The OWASP Zed Attack Proxy (ZAP) is an easy to use integrated penetration testing tool for finding vulnerabilities in web applications.
DAVTest
DAVTest tests WebDAV enabled servers by uploading test executable files, and then (optionally) uploading files which allow for command execution or other actions directly on the target. It is meant for penetration testers to quickly and easily determine if enabled DAV services are exploitable.
copy-router-config
Copies configuration files from Cisco devices running SNMP.
cisco-ocs
A mass Cisco scanning tool.
cisco-global-exploiter
Cisco Global Exploiter (CGE), is an advanced, simple and fast security testing tool.
cisco-auditing-tool
Perl script which scans cisco routers for common vulnerabilities.
Burp Suite
Burp Suite is an integrated platform for performing security testing of web applications. Its various tools work seamlessly together to support the entire testing process, from initial mapping and analysis of an application's attack surface, through to finding and exploiting security vulnerabilities.
Nmap
Nmap ("Network Mapper") is a free and open source (license) utility for network discovery and security auditing. Many systems and network administrators also find it useful for tasks such as network inventory, managing service upgrade schedules, and monitoring host or service uptime.
BED
BED is a program which is designed to check daemons for potential buffer overflows, format strings et. al.
BBQSQL
Blind SQL injection can be a pain to exploit. When the available tools work they work well, but when they don't you have to write something custom. This is time-consuming and tedious. BBQSQL can help you address those issues.